[특허]Trusted computing platform using a trusted device assembly

Trusted computing platform using a trusted device assembly 원문보기

IPC분류정보
국가/구분	United States(US) Patent 등록
국제특허분류(IPC7판)	G06F-017/50
출원번호	US-0913452 (2000-02-15)
우선권정보	EP-99301100(1999-02-15); GB-9905056(1999-03-05)
국제출원번호	PCT/GB00/000528 (2000-02-15)
§371/§102 date	20011205 (20011205)
국제공개번호	WO00/048063 (2000-08-17)
발명자 / 주소	Proudler,Graeme John Gupta,Dipankar Chen,Liqun Pearson,Siani Lynne Balacheff,Boris Van Wilder,Bruno Edgard Chan,David
출원인 / 주소	Hewlett Packard Development Company, L.P.
인용정보	피인용 횟수 : 62 인용 특허 : 14

초록 ▼

In a computing platform, a trusted hardware device ( 24) is added to the motherboard (20). The trusted hardware device (24) is configured to acquire an integrity metric, for example a hash of the BIOS memory (29), of the computing platform. The trusted hardware device (24) is tamper-resistant, difficult to forge and inaccessible to other functions of the platform. The hash can be used to convince users that that the operation of the platform (hardware or software) has not been subverted in some way, and is safe to interact with in local or remote applications. In more detail, the main processing unit (21) of the computing platform is directed to address the trusted hardware device ( 24), in advance of the BIOS memory, after release from 'reset'. The trusted hardware device (24) is configured to receive memory read signals from the main processing unit (21) and, in response, return instructions, in the native language of the main processing unit (21), that instruct the main processing unit to establish the hash and return the value to be stored by the trusted hardware device ( 24). Since the hash is calculated in advance of any other system operations, this is a relatively strong method of verifying the integrity of the system. Once the hash has been returned, the final instruction calls the BIOS program and the system boot procedure continues as normal. Whenever a user wishes to interact with the computing platform, he first requests the integrity metric, which he compares with an authentic integrity metric that was measured by a trusted party. If the metrics are the same, the platform is verified and interactions can continue. Otherwise, interaction halts on the basis that the operation of the platform may have been subverted.

대표청구항 ▼

The invention claimed is: 1. Computing apparatus comprising, mounted on an assembly, main processing means, main memory means and a trusted device, each being connected for communication with one or more other components on the assembly, the trusted device being arranged to acquire a true value of an integrity metric of the computing apparatus. 2. Computing apparatus according to claim 1, wherein the trusted device comprises device memory means and means for instructing the main processing means to determine the integrity metric and return the integrity metric for storage in the device memory means. 3. Computing apparatus according to claim 2, wherein the means for instructing the main processing means comprises, stored in the device memory means, program code native to the main processing means, and the trusted device is arranged to transfer the instructions of the program code to the main processing means. 4. Computing apparatus according to claim 3, wherein the computing apparatus is arranged to cause the instructions to be the first instructions executed after release from reset. 5. Computing apparatus according to claim 3, wherein the trusted device is arranged to transfer the instructions to the main processing means in response to memory read signals from the main processing means. 6. Computing apparatus according to claim 1, wherein the trusted device comprises device memory means and is arranged to monitor a data bus means by which components mounted on the assembly are adapted to communicate and store in the device memory means a flag in the event the first memory read signals generated by the main processing means after the computing apparatus is released from reset are addressed to the trusted device. 7. Computing apparatus according to claim 1, wherein the trusted device has stored in device memory means at least one of: a unique identity of the trusted device; an authenticated integrity metric generated by a trusted party; and a secret. 8. Computing apparatus according to claim 7, wherein the trusted device has stored in device memory means a secret comprising a private asymmetric encryption key. 9. Computing apparatus according to claim 8, wherein the trusted device also has stored in device memory means a respective public encryption key that has been signed by a trusted party. 10. Computing apparatus according to claim 8, wherein the trusted device has stored in device memory means an authenticated integrity metric generated by a trusted party and includes a encryption function, the trusted device being arranged to generate a response to a received challenge, the response comprising an acquired integrity metric and the authenticated integrity metric, both signed by the encryption function using the private asymmetric encryption key. 11. Computing apparatus as claimed in claim 1, wherein the trusted device includes non-volatile memory for storing instructions instructing the main processing means to determine the integrity metric and return the integrity metric for storage in the device memory means. 12. Computing apparatus as claimed in claim 1, wherein the integrity metric is a digest of all or part of the basic input/output software for the computing apparatus. 13. Computing apparatus as claimed in claim 1, wherein the integrity metric is a digest of all or part of the basic input/output software for components or apparatus attached to the computing apparatus. 14. Computing apparatus as claimed in claim 1, wherein the trusted device is implemented as an application specific integrated circuit device. 15. Computing apparatus as claimed in claim 1, wherein the trusted device is implemented as a programmed micro-controller. 16. Computing apparatus as claimed in claim 1, wherein the trusted device is accessed by said main processing means prior to said main processing means accessing basic input/output software instructions stored in non-volatile memory during a boot process of said computing apparatus. 17. Computing apparatus as claimed in claim 1 wherein said trusted device includes: d. a measurement function for acquiring the integrity metric of the computing apparatus; e. an authentication function for authenticating a user's smart card; and f. a controller for interacting with the main processing means and the measurement and authentication functions. 18. Computing apparatus as claimed in claim 17 wherein said measurement function has access to memory in said trusted device for storing a private key of the trusted device and the integrity metric, the integrity metric indicating whether or not the trusted device was accessed by the main processor before said main processor accesses basic input/output instructions for booting the computing apparatus. 19. A method of operating a system comprising a trusted computing apparatus and a user, the trusted computing apparatus incorporating a trusted device being arranged to acquire the true value of an integrity metric of the trusted computing apparatus, the method comprising the steps of: the trusted device acquiring the true value of the integrity metric of the trusted computing apparatus; the user generating a challenge for the trusted computing apparatus to prove its integrity and submitting the challenge to the trusted computing apparatus; the trusted computing apparatus receiving the challenge, and the trusted device generating a response including the integrity metric and returning the response to the user; and the user receiving the response, extracting the integrity metric from the response and comparing the integrity metric with an authenticated metric for the trusted computing apparatus that had been generated by a trusted party. 20. A method according to claim 19, wherein the challenge includes a nonce, the response includes the integrity metric and the nonce, both digitally signed by the trusted device using a information security algorithm, and the user verifies the integrity metric and the nonce using a respective information security algorithm. 21. A method according to claim 20, wherein the trusted device uses a private encryption key to sign the integrity metric and the nonce, and the user uses the respective public encryption key to verify the integrity metric and the nonce. 22. A method according to claim 21, wherein the response includes a certificate held by the trusted device, which certificate has been digitally signed by a trusted party using a private encryption key of the trusted party, the certificate including the public encryption key of the trusted device, and the user verifies the certificate using the public encryption key of the trusted party and uses the public encryption key from the certificate to verify the integrity metric and the nonce. 23. A method of establishing a communications channel in a system between trusted computing apparatus and remote computing apparatus, the method including the step of the remote computing apparatus verifying the integrity of the trusted computing apparatus using the method according to claim 19, and maintaining the communications channel for further transactions in the event the integrity of the trusted computing apparatus is successfully verified by the remote computing apparatus. 24. A method of verifying that trusted computing apparatus is trustworthy for use by a user for processing a particular application, the method including the step of the user verifying the integrity of the trusted computing apparatus using the method according to claim 19, and the user using the trusted computing apparatus to process the particular application in the event the integrity of the trusted computing apparatus is successfully verified by the remote computing apparatus. 25. A method according to claim 19, wherein the trusted device acquires the true value of the integrity metric of the trusted computing apparatus before a boot up process of the trusted computing apparatus is completed. 26. Computing apparatus comprising an assembly; a main processor, a main memory and a trusted device, each being mounted on the assembly and connected for communication with other components mounted on the assembly, wherein the trusted device is adapted to acquire a value of an integrity metric that measures that the computing apparatus is operating as intended and determining the correctness of the acquired value of the integrity metric. 27. Computing apparatus as claimed in claim 26, wherein the integrity metric is a digest of all or part of the basic input/output software for the computing apparatus. 28. Computing apparatus as claimed in claim 26, wherein the integrity metric is a digest of all or part of the basic input/output software for components or apparatus attached to the computing apparatus. 29. Computing apparatus as claimed in claim 26, wherein the trusted device is adapted to acquire a plurality of integrity metrics. 30. Computing apparatus as claimed in claim 26, wherein the trusted device is adapted to be tamper resistant. 31. Computing apparatus as claimed in claim 26, wherein the trusted device comprises a device memory. 32. Computing apparatus as claimed in claim 31, wherein the trusted device comprises a trusted device processor. 33. Computing device as claimed in claim 32, wherein the trusted device processor is adapted to instruct the main processor to determine the integrity metric and return the integrity metric for storage in the device memory. 34. Computing apparatus as claimed in claim 32, wherein the trusted device processor is adapted to obtain information necessary to calculate the integrity metric and to calculate the integrity metric for storage in the device memory. 35. Computing apparatus as claimed in claim 32, wherein the trusted device has a secret stored in the device memory. 36. Computing apparatus as claimed in claim 35, wherein the secret comprises a private asymmetric encryption key. 37. Computing apparatus as claimed in claim 36, wherein the trusted device also has stored in the device memory in the device memory a respective public encryption key that has been signed by a trusted third party. 38. Computing apparatus as claimed in claim 37, wherein the trusted device also has stored in the device memory an authenticated integrity metric generated by a trusted third party and wherein the trusted device is adapted to employ an encryption function, the trusted device processor being arranged to generate a response to a received challenge, the response comprising an acquired integrity metric and the authenticated integrity metric, both signed by the encryption function using the private asymmetric encryption key. 39. In a computing apparatus comprising an assembly, a plurality of functional components including a main memory and a main processor mounted on the assembly, each functional component being connected for communication with one or more other functional components on the assembly, a trusted device being one of said functional components and adapted to acquire a value of an integrity metric that measures that the computing apparatus is operating as intended and determining the correctness of the acquired value of the integrity metric. 40. The combination of claim 39 wherein the trusted device is adapted to acquire the value of the integrity metric before the computing apparatus has completed a boot up process. 41. The combination of claim 39 further including means for testing to assure that the trusted device is accessed by said main processor before said main processor accesses basic input/output instructions for booting the computing apparatus. 42. A trusted device for use as a functional component in a computing apparatus, the trusted device being adapted for mounting on an assembly of the computing apparatus and being adapted for communication with other functional components of the computing apparatus, the trusted device being adapted to acquire a value of an integrity metric that measures that the computing apparatus is operating as intended and determining the correctness of the acquired value of the integrity metric. 43. Computing apparatus as claimed in claim 42, wherein the trusted device is adapted to be tamper resistant. 44. Computing apparatus as claimed in claim 42, wherein the trusted device comprises a device memory. 45. Computing apparatus as claimed in claim 44, wherein the trusted device comprises a trusted device processor. 46. Computing apparatus as claimed in claim 45, wherein the trusted device has a secret stored in the device memory. 47. Computing apparatus as claimed in claim 46, wherein the secret comprises a private asymmetric encryption key. 48. Computing apparatus as claimed in claim 47, wherein the trusted device also has stored in the device memory in the device memory a respective public encryption key that has been signed by a trusted third party. 49. Computing apparatus as claimed in claim 48, wherein the trusted device also has stored in the device memory an authenticated integrity metric generated by a trusted third party and wherein the trusted device is adapted to employ an encryption function, the trusted device processor being arranged to generate a response to a received challenge, the response comprising an acquired integrity metric and the authenticated integrity metric, both signed by the encryption function using the private asymmetric encryption key.

이 특허에 인용된 특허 (14)

Davis Derek L., Apparatus and method for providing secured communications.
상세보기
Michael S. Jerger ; Jeffrey A. Bisset ; Craig T. Sinclair ; Michael J. Toutonghi, Declarative permission requests in a computer system.
상세보기
England Paul ; DeTreville John D. ; Lampson Butler W., Digital rights management operating system.
상세보기
England Paul ; DeTreville John D. ; Lampson Butler W., Loading and identifying a digital rights management operating system.
상세보기
Jablon David P. (Shrewsbury MA) Hanley Nora E. (Shrewsbury MA), Method and apparatus for assessing integrity of computer system software.
상세보기
Chang Steve M. (Rancho Palos Verdes CA), Method and apparatus for controlling network and workstation access prior to workstation boot.
상세보기
Chang Steve Ming-Jang (Tokyo JPX), Method and apparatus for controlling network and workstation access prior to workstation boot.
상세보기
Veil Leonard Scott, Method and system for authenticating and utilizing secure resources in a computer system.
상세보기
Davis Derek L., Secure BIOS.
상세보기
Arbaugh William A. ; Farber David J. ; Keromytis Angelos D. ; Smith Jonathan M., Secure and reliable bootstrap architecture.
상세보기
Tajalli Homayoon (Ellicott City MD) Badger Mark L. (Rockville MD) Dalva David I. (Rockville MD) Walker Stephen T. (Glenwood MD), System and method for controlling the use of a computer.
상세보기
Teper Jeffrey A. ; Koneru Sudheer ; Mangione Gordon ; Balaz Rudolph ; Contorer Aaron M. ; Chao Lucy, System and method for providing trusted brokering services over a distributed network.
상세보기
Gressel, Carmi David; Milstein, David; Sander, Avi; Hadad, Isaac; Granot, Ran, System for safe collection of payment including electronic payment receipt generators having electronic purses.
상세보기
Ginter Karl L. ; Shear Victor H. ; Sibert W. Olin ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
상세보기

이 특허를 인용한 특허 (62)

Proudler,Graeme John; Balacheff,Boris; Worley,John S.; Hyser,Chris D.; Worley, Jr.,William S, Apparatus and method for creating a trusted environment.
상세보기
Graunke, Gary L., Apparatus and method for distributing private keys to an entity with minimal secret, unique information.
상세보기
Graunke, Gary L., Apparatus and method for distributing private keys to an entity with minimal secret, unique information.
상세보기
Brickell, Ernest F., Apparatus and method for establishing a secure session with a device without exposing privacy-sensitive information.
상세보기
Brickell,Ernest F., Apparatus and method for proving the denial of a direct proof signature.
상세보기
Challener,David Carroll; Freeman,Joseph Wayne; Goodman,Steven Dale; Springfield,Randall Scott, Apparatus, system, and method for sealing a data repository to a trusted computing platform.
상세보기
Minemura,Atsushi, Application authentication system, secure device, and terminal device.
상세보기
Grawrock,David W., Attestation using both fixed token and portable token.
상세보기
Brickell, Ernie F.; Wood, Matthew D., Attesting to platform configuration.
상세보기
Glew,Andrew F.; Sutton,James A.; Smith,Lawrence O.; Grawrock,David W.; Neiger,Gilbert; Kozuch,Michael A., Authenticated code module.
상세보기
Durst, David I.; Kaish, Norman; Fraser, Jay, Authentication method and system.
상세보기
Fraser, Jay, Authentication method and system.
상세보기
Fraser, Jay; Weber, Lawrence, Authentication method and system.
상세보기
Badaoui-Najjar, Ramez N.; Depew, Kevin G.; Spottswood, Jason; Neufeld, E. David, Binding data to computers using cryptographic co-processor and machine-specific and platform-specific keys.
상세보기
Dalton, Christopher I., Demonstrating integrity of a compartment of a compartmented operating system.
상세보기
Smith,Ned M., Distributed control of integrity measurement using a trusted fixed token.
상세보기
Liu, Zhengrong; Purna, Yusuf Wilajati; Shinichi, Takemura; Szeto, Nicholas, Establishing a trusted platform in a digital processing system.
상세보기
Conner,Finis; Couse,Robert; Van Le,An; Nigam,Anil, High speed smart card with flash memory.
상세보기
Proudler, Graeme John, Information security system.
상세보기
Proudler, Graeme John; Balacheff, Boris, Information system.
상세보기
Takayama, Hisashi, Information terminal, security device, data protection method, and data protection program.
상세보기
Jacquin, Ludovic Emmanuel Paul Noel; Laffey, Thomas M.; Shaw, Adrian, Integrity values for beginning booting instructions.
상세보기
Nemiroff, Daniel; Herbert, Howard C.; Diamant, Nimrod; Maor, Moshe; Smith, Carey W.; Huffman, Amber; Corrado, Fran; Rothman, Michael A.; Zimmer, Vincent J., Mechanism to control access to a storage device.
상세보기
Brickell, Ernest; Graunke, Gary; Stevens, William A.; Vembu, Balaji, Method and apparatus for authenticated, recoverable key distribution with no database secrets.
상세보기
Cheng, Antonio S.; Brannock, Kirk D., Method and apparatus for establishing processor as core root of trust for measurement.
상세보기
Kozuch, Michael A.; Sutton, II, James A.; Grawrock, David, Method and apparatus for loading a trustable operating system.
상세보기
Kozuch, Michael A.; Sutton, II, James A.; Grawrock, David, Method and apparatus for loading a trustable operating system.
상세보기
Kozuch, Michael A.; Sutton, James A.; Grawrock, David, Method and apparatus for loading a trustable operating system.
상세보기
Kawamoto, Youji, Method and apparatus for providing information for decrypting content, and program executed on information processor.
상세보기
Brannock, Kirk D.; Cheng, Antonio S., Method and apparatus for verifying authenticity of initial boot code.
상세보기
Cheng, Antonio S.; Brannock, Kirk D., Method and apparatus for verifying authenticity of initial boot code.
상세보기
Ovadia, Shlomo, Method and apparatus to authenticate base and subscriber stations and secure sessions for broadband wireless networks.
상세보기
Schunter, Matthias; Poritz, Jonathan A.; Waidner, Michael; Van Herreweghen, Elsie A., Method and device for verifying the security of a computing platform.
상세보기
Pearson, Siani Lynne; Proudler, Graeme John, Method of and apparatus for ascertaining the status of a data processing environment.
상세보기
Proudler, Graeme John; Burton, William; Kuhlmann, Dirk; Plaquin, David, Methods, devices and data structures for trusted data.
상세보기
Griffin, Jonathan; Dalton, Christopher I.; Child, Michael; Chen, Liqun; Norman, Andrew Patrick, Multiple trusted computing environments.
상세보기
Lawman, Matthew John; Pearson, Siani Lynne, Network storage devices.
상세보기
Leicher, Andreas; Schmidt, Andreas; Shah, Yogendra, OpenID/local openID security.
상세보기
Proudler, Graeme John, Performance of a service on a computing platform.
상세보기
Brickell,Ernie F., Platform and method for establishing trust without revealing identity.
상세보기
Zimmer, Vincent J.; Bigbee, Bryant; Fish, Andrew J.; Doran, Mark S., Providing a secure execution mode in a pre-boot environment.
상세보기
Zimmer, Vincent J.; Bigbee, Bryant; Fish, Andrew J.; Doran, Mark S., Providing a secure execution mode in a pre-boot environment.
상세보기
Zimmer,Vincent J.; Rothman,Michael A., Remote management and provisioning of a system across a network based connection.
상세보기
Wood, Matthew D.; Brickell, Ernie, Replacing blinded authentication authority.
상세보기
Wood, Matthew D.; Brickell, Ernie, Replacing blinded authentication authority.
상세보기
Wood, Matthew D.; Saint-Hilaire, Ylian, Secure application attestation using dynamic measurement kernels.
상세보기
Chen, Liqun; Harrison, Keith Alexander, Security method and apparatus using biometric data.
상세보기
Gentles, Thomas A.; Loose, Timothy C.; Rothschild, Wayne H., Security of gaming software.
상세보기
Gentles,Thomas A.; Loose,Timothy C.; Rothschild,Wayne H., Security of gaming software.
상세보기
Lee, Woo-Hyun; Kim, Ji-Soo; Yu, Bum-Seok, Solid state disk and input/output method.
상세보기
Satoh, Masakazu, System and method for authentication of a hardware token.
상세보기
Satoh, Masakazu, System and method for authentication of a hardware token.
상세보기
Liu, Zhengrong; Szeto, Nicholas; Takemura, Shinichi; Miyoshi, Yutaka; Ono, Tomoyuki, System and method for authorizing the use of stored information in an operating system.
상세보기
Brickell,Ernie F., System and method for establishing trust without revealing identity.
상세보기
Brickell,Ernie F., System and method for establishing trust without revealing identity.
상세보기
Zimmer,Vincent J.; Wiseman,Willard M.; Li,Jing, System and method to support platform firmware as a trusted process.
상세보기
Cha, Inhyok; Guccione, Louis J.; Schmidt, Andreas; Leicher, Andreas; Shah, Yogendra C., Systems and methods for securing network communications.
상세보기
Buβer, Jens-Uwe; Fischer, Kai, Testing integrity of property data of a device using a testing device.
상세보기
Thom, Stefan; Eizenhoefer, Shon; Holt, Erik; Gandhi, Yash Ashok Kumar, Transparent trust validation of an unknown platform.
상세보기
Grawrock, David, Trusted platform module for generating sealed data.
상세보기
Morais, Dinarte; Lange, Jon; Simon, Daniel R.; Chen, Ling Tony; Benaloh, Josh D., Use of hashing in a secure boot loader.
상세보기
Perrig, Adrian; Khosla, Pradeep; Seshadri, Arvind; Luk, Mark; van Doorn, Leendert, Verifying integrity and guaranteeing execution of code on untrusted computer platform.
상세보기

IPC	Description
A	생활필수품
A62	인명구조; 소방(사다리 E06C)
A62B	인명구조용의 기구, 장치 또는 방법(특히 의료용에 사용되는 밸브 A61M 39/00; 특히 물에서 쓰이는 인명구조 장치 또는 방법 B63C 9/00; 잠수장비 B63C 11/00; 특히 항공기에 쓰는 것, 예. 낙하산, 투출좌석 B64D; 특히 광산에서 쓰이는 구조장치 E21F 11/00)
A62B-1/08	.. 윈치 또는 풀리에 제동기구가 있는 것

내보내기 구분	파일저장 인쇄 메일전송
구성항목	기본정보 상세정보 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표IPC 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 공고번호, 공고일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표출원인, 출원인국적, 출원인주소, 발명자, 발명자E, 발명자코드, 발명자주소, 발명자 우편번호, 발명자국적, 대표IPC, IPC코드, 요약, 미국특허분류, 대리인주소, 대리인코드, 대리인(한글), 대리인(영문), 국제공개일자, 국제공개번호, 국제출원일자, 국제출원번호, 우선권, 우선권주장일, 우선권국가, 우선권출원번호, 원출원일자, 원출원번호, 지정국, Citing Patents, Cited Patents
저장형식	Text(ASCII format) Excel format PIAS분석(.xls)
메일정보	받는사람 (필수) @ 보내는사람 (선택) @ 제목 내용 KISTI 검색결과 이메일 서비스
안내	총 건의 자료가 검색되었습니다. 다운받으실 자료의 인덱스를 입력하세요. (1-10,000) 검색결과의 순서대로 최대 10,000건 까지 다운로드가 가능합니다. 데이타가 많을 경우 속도가 느려질 수 있습니다.(최대 2~3분 소요) 다운로드 파일은 UTF-8 형태로 저장됩니다. 파일의 내용이 제대로 보이지 않을실 때는 웹브라우저 상단의 보기 -> 인코딩 -> 자동선택 여부를 확인하십시오. ~ Text(ASCII format) Excel format

연합인증

Trusted computing platform using a trusted device assembly 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

이 특허에 인용된 특허 (14)

이 특허를 인용한 특허 (62)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트

연합인증

Trusted computing platform using a trusted device assembly 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

전체(0) 논문(0) 특허(0) 보고서(0)

전체(0) 논문(0) 특허(0) 보고서(0)

이 특허에 인용된 특허 (14)

이 특허를 인용한 특허 (62)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트